Alan Shieh
Emin Gun Sirer
ABSTRACT
This paper examines an extreme point in the design space of programmable switches and network policy enforcement. Rather than relying on extensive changes to switches to provide more programmability, SideCar distributes custom processing code between shims running on every end host and general purpose sidecar processors, such as server blades, connected to each switch via commonly available redirection mechanisms. This provides applications with pervasive network instrumentation and programmability on the forwarding plane. While not a perfect replacement for programmable switches, this solves several pressing problems while requiring little or no change to existing switches. In particular, in the context of public cloud data centers with 1000s of tenants, we present novel solutions for multicast, controllable network bandwidth allocation (e.g., use-what-you-pay-for), and reachability isolation (e.g., a tenant's VM only sees other VMs of the tenant and shared services).
- Amazon Web Services. http://aws.amazon.com/.Google Scholar
- A. Begel, S. McCanne, and S. L. Graham. BPF+: Exploiting Global Data-flow Optimization in a Generalized Packet Filter Architecture. ACM CCR, 1999. Google ScholarDigital Library
- M. Casado, M. J. Freedman, J. Pettit, J. Luo, N. McKeown, and S. Shenker. Ethane: Taking Control of the Enterprise. ACM CCR, 2007. Google ScholarDigital Library
- M. Castro and B. Liskov. Practical Byzantine fault tolerance. ACM TOCS, 1998. Google ScholarDigital Library
- F. Chang, J. Dean, S. Ghemawat, and W. Hsieh. BigTable: A distributed storage system for structured data. ACM TOCS, 2008. Google ScholarDigital Library
- Y. Chu, S. Rao, and H. Zhang. A Case for End System Multicast. Proceedings of SIGMETRICS, Oct. 2000. Google ScholarDigital Library
- Cisco Systems. Traffic Anomaly Detection and Mitigation Solutions. http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5879/ps6264/ps5887/prod_bulletin0900aecd800fd124_ps5888_Products_Bulletin.html.Google Scholar
- Cisco Systems. TrustSec. http://www.cisco.com/en/US/netsol/ns1051/index.html.Google Scholar
- B. Claise. RFC3954: Cisco Systems NetFlow Services Export Version 9, 2004.Google Scholar
- T. Das, P. Padala, V. Padmanabhan, R. Ramjee, and K. G. Shin. LiteGreen: Saving Energy in Networked Desktops Using Virtualization. USENIX ATC, 2010. Google ScholarDigital Library
- S. Deering and D. Cheriton. Multicast routing in datagram internetworks and extended LANs. ACM TOCS, 1990. Google ScholarDigital Library
- C. Dixon, H. Uppal, D. Brandon, A. Krishnamurthy, and T. Anderson. An End to the Middle. In (under submission), 2010.Google Scholar
- M. Dobrescu, N. Egi, K. Argyraki, B. Chun, and K. RouteBricks: Exploiting parallelism to scale software routers. SOSP, 2009. Google ScholarDigital Library
- Y. Dong, Z. Yu, and G. Rose. SR-IOV Networking in Xen: Architecture, Design and Implementation. In WIOV, 2008. Google ScholarDigital Library
- S. Ghemawat, H. Gobioff, and S.-T. Leung. The Google file system. SIGOPS OSR, 2003. Google ScholarDigital Library
- A. Greenberg, J. R. Hamilton, N. Jain, S. Kandula, C. Kim, P. Lahiri, D. A. Maltz, P. Patel, and S. Sengupta. VL2:A scalable and flexible data center network. SIGCOMM, 2009. Google ScholarDigital Library
- N. Gude, T. Koponen, J. Pettit, B. Pfaff, M. Casado, N. McKeown, and S. Shenker. NOX:towards an operating system for networks. ACM SIGCOMM CCR, 38(3), 2008. Google ScholarDigital Library
- A. Gulati and C. A. Waldspurger. PARDA: Proportional Allocation of Resources for Distributed Storage Access. In FAST, 2009. Google ScholarDigital Library
- S. Han, K. Jang, K. Park, and S. Moon. PacketShader: a GPU-Accelerated Software Router. SIGCOMM, 2010. Google ScholarDigital Library
- Hewlett-Packard. HP ProCurve 2910al Switch Series. http://h10146.www1.hp.com/products/switches/HP_ProCurve_2910al_Switch_Series/overview.htm/.Google Scholar
- M. Isard. Autopilot. SIGOPS OSR, 2007.Google Scholar
- D. Katabi, M. Handley, and C. Rohrs. Congestion control for high bandwidth-delay product networks. SIGCOMM, 2002. Google ScholarDigital Library
- E. Kohler, R. Morris, B. Chen, J. Jannotti, and M. F. Kaashoek. The Click modular router. ACM TOCS, 2000. Google ScholarDigital Library
- H. A. Lagar-Cavilla, J. A. Whitney, A. M. Scannell, P. Patchin, S. M. Rumble, E. de Lara, M. Brudno, and M. Satyanarayanan. SnowFlock. EuroSys, 2009.Google ScholarDigital Library
- S. McCanne and V. Jacobson. The BSD packet filter: A new architecture for user-level packet capture. USENIX Winter Conf., 1993. Google ScholarDigital Library
- N. McKeown, T. Anderson, H. Balakrishnan, G. Parulkar, L. Peterson, J. Rexford, S. Shenker, and J. Turner. OpenFlow: Enabling innovation in campus networks. ACM CCR, 2008. Google ScholarDigital Library
- J. C. Mogul, Praveen Yalagandula, J. Tourrilhes, R. McGeer, S. Banerjee, T. Connors, and P. Sharma. API Design Challenges for Open Router Platforms on Proprietary Hardware. HotNets, 2008.Google Scholar
- J. Mudigonda, P. Yalagandula, M. Al-Fares, and J. Mogul. SPAIN: COTS Data-Center Ethernet for Multipathing over Arbitrary Topologies. NSDI, 2010. Google ScholarDigital Library
- R. Pan, B. Prabhakar, and A. Laxmikantha. QCN: Quantized Congestion Notification. IEEE 802.1Qau Presentation, 2007. http://www.ieee802.org/1/files/public/docs2007/au-prabhakar-qcn-description.pdf.Google Scholar
- P. Phaal and M. Lavine. sFlow Version 5. 2004.Google Scholar
- E. Rosen, A. Viswanathan, and R. Callon. RFC3031: Multiprotocol Label Switching Architecture. 2001.Google Scholar
- SourceFire. 3D Sensor. http://www.sourcefire.com/products/3D/sensor.Google Scholar
- T. Spalink, S. Karlin, L. Peterson, and Y. Gottlieb. Building a robust software-based router using network processors. SIGOPS OSR, 2001. Google ScholarDigital Library
- D. Tennenhouse and D. Wetherall. Towards an active network architecture. ACM SIGCOMM, 1996.Google ScholarDigital Library
- Y. Vigfusson, H. Abu-Libdeh, M. Balakrishnan, K. Birman, and Y. Tock. Dr. Multicast: Rx for Data Center Communication Scalability. LADIS, 2008. Google ScholarDigital Library
- M. Walfish, J. Stribling, M. Krohn, and H. Middleboxes no longer considered harmful. OSDI, 2004. Google ScholarDigital Library
Index Terms
- SideCar: building programmable datacenter networks without programmable switches
Recommendations
Protocol Responsibility Offloading to Improve TCP Throughput in Virtualized Environments
Virtualization is a key technology that powers cloud computing platforms such as Amazon EC2. Virtual machine (VM) consolidation, where multiple VMs share a physical host, has seen rapid adoption in practice, with increasingly large numbers of VMs per ...
Opportunistic flooding to improve TCP transmit performance in virtualized clouds
SOCC '11: Proceedings of the 2nd ACM Symposium on Cloud ComputingVirtualization is a key technology that powers cloud computing platforms such as Amazon EC2. Virtual machine (VM) consolidation, where multiple VMs share a physical host, has seen rapid adoption in practice with increasingly large number of VMs per ...
Precise Time-synchronization in the Data-Plane using Programmable Switching ASICs
SOSR '19: Proceedings of the 2019 ACM Symposium on SDN ResearchCurrent implementations of time synchronization protocols (e.g. PTP) in standard industry-grade switches handle the protocol stack in the slow-path (control-plane). With new use cases of in-network computing using programmable switching ASICs, global ...
Comments